MessageClient.exe

Equitrac

Nuance Communications, Inc.

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘Equitrac Message Client’.
Publisher:
Nuance Communications, Inc.  (signed and verified)

Product:
Equitrac

Description:
Message Client

Version:
5.6.26.8351

MD5:
b45a59e520227e2f7e06a7920faf4767

SHA-1:
5e6959c47b150d6b4af417ef089472c1d82dd1c1

SHA-256:
4d4c07839b382eda43fa39ddfd0520c25dce3fabb326ee0d6ffbb03a9e7140f3

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/25/2024 10:44:39 AM UTC  (today)

File size:
103.1 KB (105,528 bytes)

Product version:
5.6.26.8351

Copyright:
© 2016 Nuance Communications, Inc. All Rights Reserved.

Original file name:
MessageClient.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\Program Files\equitrac\express\client\messageclient\messageclient.exe

Digital Signature
Authority:
GoDaddy.com, Inc.

Valid from:
11/25/2013 2:28:28 PM

Valid to:
11/25/2016 2:28:28 PM

Subject:
CN="Nuance Communications, Inc.", O="Nuance Communications, Inc.", L=Burlington, S=Massachusetts, C=US

Issuer:
SERIALNUMBER=07969287, CN=Go Daddy Secure Certification Authority, OU=http://certificates.godaddy.com/repository, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:
27C9FA8AF794DD

File PE Metadata
Compilation timestamp:
10/20/2016 6:02:18 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

Entry address:
0x16E8E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.4762

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
84 KB (86,016 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
Equitrac Message Client

Command:
"C:\Program Files\equitrac\express\client\messageclient\messageclient.exe"